General
-
Target
8f21cc5b66c620a939e64945799b90330b3a1a9e2b915e1293ca118a4e504d56.exe
-
Size
32KB
-
MD5
2c44baac02534abaa00696f649c2792f
-
SHA1
58f6eba650cdfa331cf0cdf829b0f927080d153f
-
SHA256
8f21cc5b66c620a939e64945799b90330b3a1a9e2b915e1293ca118a4e504d56
-
SHA512
b960960bf17ec7b47cde68c297874efe2b06ffa43f346bbc326b6ab66800017be0e42e911e18ea9b757f6db716a231c5cd86a18d9c1f8b121d56cd36177ce9c0
-
SSDEEP
384:R0bUe5XB4e0XOOZ9Qq1pvmufCsIs0WTQtTUFQqz91ObbS:KT9BuN/Qqvvmu6dTbS
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7NC
Botnet
NYAN CAT
C2
mexico2020.duckdns.org:2054
Mutex
3b7c2aa84f62
Attributes
-
reg_key
3b7c2aa84f62
-
splitter
@!#&^%$
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
8f21cc5b66c620a939e64945799b90330b3a1a9e2b915e1293ca118a4e504d56.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections